gdpr-breach-sentinel-oliver-schmidt-prietz
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill contains a surface for indirect prompt injection (Category 8) as it processes unvalidated user-provided incident descriptions that could potentially influence agent behavior.\n
- Ingestion points: Free-form incident descriptions provided by the user in 'Guided Mode' and 'Fast Path' within
SKILL.md.\n - Boundary markers: Absent; the skill does not use delimiters (e.g., XML tags) to isolate user-supplied descriptions from the agent's core instructions.\n
- Capability inventory: The skill uses
web_searchand potential document generation tools (docx).\n - Sanitization: No specific sanitization or filtering logic is mentioned to prevent embedded instructions in user data from being executed.\n- [SAFE]: No malicious patterns such as obfuscation, persistence mechanisms, or hardcoded credentials were found. The skill's behavior is consistent with its stated purpose of assisting with regulatory compliance.\n- [DATA_EXFILTRATION]: The 'Dynamic Web Research Module' constructs search queries based on user data points. While this sends context to a search engine, it is a documented functional feature for legal research and does not represent an unauthorized exfiltration attempt.
Audit Metadata